|
349431
|
- |
|
pblang
|
pblang
|
Direct static code injection vulnerability in setcookie.php in PBLang 4.65, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code via the username (u parameter), which …
|
NVD-CWE-Other
|
CVE-2005-2893
|
2017-07-11 10:33 |
2005-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349432
|
- |
|
pblang
|
pblang
|
Cross-site scripting (XSS) vulnerability in the user registration in PBLang 4.65, and possibly earlier versions, allows remote attackers to inject arbitrary web script or PHP via the location field.
|
NVD-CWE-Other
|
CVE-2005-2894
|
2017-07-11 10:33 |
2005-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349433
|
- |
|
pblang
|
pblang
|
setcookie.php in PBLang 4.65, and possibly earlier versions, allows remote attackers to obtain sensitive information via a %00 (a null byte) in the u parameter, which reveals the path in an error mes…
|
NVD-CWE-Other
|
CVE-2005-2895
|
2017-07-11 10:33 |
2005-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349434
|
- |
|
stylemotion
|
web_news
|
SQL injection vulnerability in WEB//NEWS 1.4 allows remote attackers to execute arbitrary SQL commands via the (1) wn_userpw parameter to startup.php, (2) cat, (3) id, or (4) stof parameter to news.p…
|
NVD-CWE-Other
|
CVE-2005-2896
|
2017-07-11 10:33 |
2005-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349435
|
- |
|
-
|
-
|
SQL injection vulnerability in class-1 Forum Software 0.24.4 allows remote attackers to execute arbitrary SQL commands and bypass the file extension check via SQL code in the file extension of an upl…
|
NVD-CWE-Other
|
CVE-2005-2902
|
2017-07-11 10:33 |
2005-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349436
|
- |
|
eset_software
|
nod32_antivirus
|
Heap-based buffer overflow in NOD32 2.5 with nod32.002 1.033 build 1127, with active scanning enabled, allows remote attackers to execute arbitrary code via an ARJ archive containing a file with a lo…
|
NVD-CWE-Other
|
CVE-2005-2903
|
2017-07-11 10:33 |
2005-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349437
|
- |
|
clam_anti-virus
|
clamav
|
libclamav/fsg.c in Clam AntiVirus (ClamAV) before 0.87 allows remote attackers to cause a denial of service (infinite loop) via a crafted FSG packed executable.
|
CWE-399
CWE-17
Resource Management Errors
Code
|
CVE-2005-2919
|
2017-07-11 10:33 |
2005-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349438
|
- |
|
clam_anti-virus
|
clamav
|
Buffer overflow in libclamav/upx.c in Clam AntiVirus (ClamAV) before 0.87 allows remote attackers to execute arbitrary code via a crafted UPX packed executable.
|
NVD-CWE-Other
|
CVE-2005-2920
|
2017-07-11 10:33 |
2005-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349439
|
- |
|
checkpoint
|
zonealarm
zonealarm_security_suite
|
Multiple Check Point Zone Labs ZoneAlarm products before 7.0.362, including ZoneAlarm Security Suite 5.5.062.004 and 6.5.737, use insecure default permissions for critical files, which allows local u…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-2932
|
2017-07-11 10:33 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349440
|
- |
|
sco
|
unixware
|
Unspecified vulnerability in ptrace in SCO UnixWare 7.1.3 and 7.1.4 allows local users to gain privileges via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2005-2934
|
2017-07-11 10:33 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
